CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

4309 matches found

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•3 views

Malicious code in equinox-nodejs-csrf-dagda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0975315d4e177db7a394dfd05890d08f20a080994d0091cfe03b455a5044775a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-121001

Malicious code in umbra-nodejs-nestjs-node-config npm...

OSV•added 2025/11/12 4:29 a.m.•1 views

MAL-2025-147950 Malicious code in sirius-fork-nodejs-bellatrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2c6c1bd831399d8c2b516a325a12d79cba13a091a76042525b7e1c1c6feb29e9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 4:29 a.m.•1 views

MAL-2025-146933 Malicious code in quark-pipe-mocha-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00fbf13855675eb0f04555f377cf94b4bcc89c117c1b9e7a004ad4c3159c4c47 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 4:29 a.m.•1 views

MAL-2025-146913 Malicious code in quantum-promise-phoenix-nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83997c7f595e58fc0c9df6d3ab102a43b0ac4c98f777de56bcb403d0b92d078a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 4:29 a.m.•1 views

MAL-2025-148468 Malicious code in taurus-exec-javascript-repository (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cdedd5376e6fe1861b11be01534bfda0c690e573d66adc4218268940bdf545eb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 4:29 a.m.•1 views

MAL-2025-145567 Malicious code in nodejs-hydra-jest-quito (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9932132f6d9bafb954b656330727089d6eb11d9a744fe3333e8dd7384105b5e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 4:29 a.m.•1 views

MAL-2025-148720 Malicious code in toml-nodejs-spinner-uglify-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 39b665158c37110255c5be34bbe5ad2da8289d225777f4daeed830c7f915a5d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

OSV•added 2025/11/12 4:29 a.m.•1 views

MAL-2025-141247 Malicious code in cressida-vuepress-nconf-xml (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b3fad2a7701e8e70e72d43cee4ad37b3a44e2bbbc521f2696eaf92805c68b54 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-124872

Malicious code in miranda-ora-module-nodejs npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-121318

Malicious code in testcafe-xenon-chakra-ui-nodejs npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in blitz-nodejs-postcss-umbra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45892fb45c9f93ca8fd5b90a65388042f2205a48413aa509a34733d2c1d972cd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-116133

Malicious code in betelgeuse-betelgeuse-cassini-nodejs npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-113319

Malicious code in galaxy-nodejs-ultra-wasat npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-120062

Malicious code in zenobia-nodejs-sass-loader-phoenix npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-111856

Malicious code in leda-async-nodejs-izar npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-122211

Malicious code in scorpius-nodejs-sagitta-cz-conventional-changelog npm...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-111404

Malicious code in markdown-pdf-xerxes-eslint-config-nodejs npm...

OSSF Malicious Packages•added 2025/11/12 4:29 a.m.•2 views

Malicious code in fornax-polaris-nodejs-ignite (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 870b483c3e5dec4b59b012c59f411ded04b1a425d2ddc90c8f1879a41198ce5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD•added 2025/11/12 4:29 a.m.•1 views

EUVD-2025-112979

Malicious code in halley-cosmiconfig-nodejs-ganymede npm...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by